Protect Critical & Operational Infrastructure

Case Study






Business Background

Operating in 18 countries, Tristar Transport LLC is a globally renowned logistics provider, catering to the needs of the petroleum and chemical industries. In just 20 years, the Dubai-based company has built a global network throughout the Middle East, Africa, Asia, the Far East, and Central America. By providing dedicated facilities for transport, warehousing, and fuel supply operations, Tristar is a crucial link in the energy sector’s global supply chain, and the partner of choice for major multinationals like Shell, BP, and Total.

"Darktrace gives us the confidence to innovate, which makes all the difference in a competitive market."
Adam Lalani, Group Head of IT



  • Transportation


  • Limited resources to safeguard rapid expansion
  • IoT devices expanding attack surface
  • Insider threat and risks from supply chain
  • Securing third-party cloud environments
  • Hybrid network infrastructure


  • Real-time detection of and response to in-progress attacks
  • Flexible, self-learning AI able to adapt to fast-evolving business
  • 100% network visibility across IT, IoT, and the cloud
  • Confidence in undertaking digital

As Tristar continues to expand its network across an international portfolio of clients, defending its critical systems against advanced attacks has become an increasing challenge. As an essential link in the complex, global supply chains underpinning the energy sector, Tristar recognized that a severe cyber attack could have far-reaching consequences. Finances and reputation were not the only assets at stake, as a successful attack could potentially cause physical and environmental damage as well. Given the heightened cyber risks associated with the energy sector, Tristar sought to reinforce its existing security stack with a solution capable of detecting and responding to zero-day, supply chain, and insider threats.

From devices that monitor driver fatigue, through to warehouse bots, Tristar uses a range of innovative technologies to support its digitized solutions and services. However, due to the company’s explosive growth, available resources were at a premium - making it tougher to secure its growing infrastructure against advanced attacks. Lacking visibility into itsmcloud and IoT systems in particular, Tristar’s security team needed a cyber defence solution that could autonomously detect and respond to cyber threats across an increasingly diverse digital infrastructure.


Tristar decided to deploy Darktrace’s Enterprise Immune System to protect its sensitive customer data and operational systems, given the technology’s unique ability to learn ‘normal’ on the job and adapt to the increasing complexity, diversity, and scale of Tristar’s sprawling global network.

After a swift installation, Darktrace’s cyber defence AI immediately started learning the normal ‘pattern of life’ for every user and device in the business. Rather than depend on manual input or preset rules and signatures,its evolving ‘sense of self’ allows Darktrace to detect the hidden vulnerabilities and novel threats that other tools miss.

Tristar also deployed Darktrace’s autonomous response solution, Darktrace Antigena. Antigena functions like a digital antibody, taking precise, surgical actions to contain in-progress threats within seconds.


For Tristar, dealing with highly valuable and highly dangerous materials means that even the slightest compromise could have severe consequences. Antigena can defend against even the most sophisticated, machine-speed attacks which would make an impact well before humans have time to respond.

Darktrace’s autonomous response technology not only contains emerging cyber threats but does so without interruption. Antigena AI detects anomalous  activity and then responds by enforcing the normal ‘pattern of life’ for a given user or device – allowing the business to operate as usual, and giving human responders the time needed to catch up and investigate and remediate as needed.

Deployed across its cloud, IoT, and physical networks, Darktrace AI also allows Tristar to correlate and analyze rich insights across its diverse digital  infrastructure. Darktrace’s Threat Visualizer interface provides the security team with complete visibility of all traffic on its systems in a single pane of glass, while surfacing intuitive and graphical insights for deep, context-based threat investigations.

"Digitizing our operations is vital for the growth of our business. IoT brings about huge opportunities for us to optimize our services, but also introduces risks that are difficult to detect in a rapidly evolving network."
Adam Lalani, Group Head of IT


“We deployed Darktrace’s AI and have not looked back. The Enterprise Immune System does the legwork for us, spotting genuine threats in real time, and Antigena responds before they can escalate,” commented Adam Lalani, Group Head of IT.

Darktrace’s cyber AI gives the advantage back to the defenders, not only working 24/7 to detect and contain attacks, but also filtering each threat by its level of criticality, allowing security teams to optimize their resources. “For a small security team, Darktrace’s AI is a game changer. It immediately starts learning and identifying threats, no matter where they are on our systems, without the need for any prior configuration,” remarked Lalani.

Darktrace has given Tristar’s security team the time needed to focus on adding value to the business. With its data protected by cyber AI, and every device on its systems visualized and monitored, the company can modernize its IT systems and pursue the latest advances in technology, improving efficiency and cutting costs.

Darktrace is the cornerstone of the company’s award-winning digital transformation project, which includes smart sensors, automation, and block chain ledgers overseeing the supply chain.

As Lalani explained, “Darktrace gives us the confidence to innovate, which makes all the difference in a competitive market.”

Darktrace AI has given Tristar meaningful control over its digital infrastructure as it expands beyond physical networks and into interconnected, virtual  systems. Even as its systems grow more complex, Darktrace’s self-learning technology will continue to adapt, learn and react, so that Tristar can always remain one step ahead in the face of a rapidly evolving threat landscape.

“I’ve not seen anything else that can compare to Darktrace,” commented Lalani, “It has changed how we think about our key systems and services.”

© Darktrace 2019. All rights reserved.

© 2023 Acquired Insights Inc. Privacy Policy I Terms of Use